Alternatives and similar repositories for c2

Users that are interested in c2 are comparing it to the libraries listed below

• winsecurity / Offensive-C-Sharp
  ☆164Updated 2 years ago
• kymb0 / Malware_learns
  ☆133Updated 2 years ago
• MythicAgents / Athena
  ☆203Updated 2 months ago
• kleiton0x00 / Shelltropy
  A technique of hiding malicious shellcode via Shannon encoding.
  ☆255Updated 2 years ago
• VirtualAlllocEx / Payload-Download-Cradles
  This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …
  ☆256Updated 3 years ago
• RedTeamOperations / Journey-to-McAfee
  ☆113Updated 3 years ago
• dievus / PowerShellRunner
  PowerShell runner for executing malicious payloads in order to bypass Windows Defender.
  ☆73Updated 3 years ago
• xforcered / BokuLoader
  A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
  ☆332Updated 11 months ago
• georgesotiriadis / MalwareDev
  ☆85Updated 2 years ago
• NUL0x4C / NoRunPI
  Run Your Payload Without Running Your Payload
  ☆180Updated 2 years ago
• klezVirus / klezVirus.github.io
  CyberSec Blog
  ☆95Updated 2 years ago
• dobin / antnium
  A C2 framework for initial access in Go
  ☆187Updated 3 years ago
• Peco602 / cobaltstrike-aggressor-scripts
  A collection of Cobalt Strike Aggressor scripts.
  ☆98Updated 3 years ago
• MythicAgents / Medusa
  Medusa is a cross-platform C2 agent compatible with Python 2.7 and 3.8, compatible with Mythic
  ☆185Updated 3 months ago
• MythicAgents / merlin
  Cross-platform post-exploitation HTTP Command & Control agent written in golang
  ☆98Updated 3 months ago
• gh0x0st / wanderer
  An open-source process injection enumeration tool written in C#
  ☆171Updated 2 years ago
• iilegacyyii / Shellcrypt
  A QoL tool to obfuscate shellcode. In the future will be able to chain encoding/encryption/compression methods.
  ☆205Updated 2 years ago
• pracsec / AmsiBypassHookManagedAPI
  A new AMSI Bypass technique using .NET ALI Call Hooking.
  ☆191Updated 2 years ago
• kleiton0x00 / RedditC2
  Abusing Reddit API to host the C2 traffic, since most of the blue-team members use Reddit, it might be a great way to make the traffic lo…
  ☆268Updated 2 years ago
• HavocFramework / Talon
  (Demo) 3rd party agent for Havoc
  ☆140Updated last year
• brosck / Reaper
  「💀」Proof of concept on BYOVD attack
  ☆161Updated 7 months ago
• SaadAhla / AMSI_patch
  Patching AmsiOpenSession by forcing an error branching
  ☆146Updated last year
• gatariee / Winton
  Command and Control (C2) framework
  ☆127Updated 2 months ago
• Enelg52 / KittyStager
  KittyStager is a simple stage 0 C2. It is made of a web server to host the shellcode and an implant, called kitten. The purpose of this p…
  ☆220Updated 2 years ago
• florylsk / RecycledInjector
  Native Syscalls Shellcode Injector
  ☆266Updated 2 years ago
• smokeme / airstrike
  ☆167Updated 11 months ago
• 0xTriboulet / Revenant
  Revenant - A 3rd party agent for Havoc that demonstrates evasion techniques in the context of a C2 framework
  ☆379Updated 11 months ago
• cinzinga / Evasion-Practice
  A variety of AV evasion techniques written in C# for practice.
  ☆92Updated 4 years ago
• sliverarmory / armory
  The Official Sliver Armory
  ☆111Updated 3 months ago
• Tylous / Freeze.rs
  Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
  ☆188Updated 10 months ago